Conviso Vulnerable Web Application is the OSS project from the Conviso Application Security for the community. The project represents a vulnerable web application to practice security testing and improve your learning in AppSec..
☆63Jul 16, 2025Updated 8 months ago
Alternatives and similar repositories for CVWA
Users that are interested in CVWA are comparing it to the libraries listed below
Sorting:
- ☆17Aug 3, 2021Updated 4 years ago
- CEH Practical Exam☆19Dec 29, 2020Updated 5 years ago
- vAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios through Exercises.☆1,332Jan 10, 2025Updated last year
- Slim dockerized Android ndk☆12Mar 3, 2023Updated 3 years ago
- Examples of different vulnerabilities, in a variety of languages, shapes and sizes.☆29Mar 7, 2024Updated 2 years ago
- Slack Leak scans all Slack public and private channels for sensitive information such as credit cards, API tokens, private keys, password…☆18Jul 23, 2025Updated 7 months ago
- NetVuln 2.0 - As the Predeccessor to NetVuln 1.0 - This Newer program will not only be able to perform a port scan and subdomain scan b…☆21Aug 11, 2025Updated 7 months ago
- the collection of all useful extensions that are used in web hacking & Bug Bounty Hunting☆13Sep 4, 2023Updated 2 years ago
- This is vulnerable microservice written in many language to demonstrating OWASP API Top Security Risk (under development)☆46Feb 2, 2023Updated 3 years ago
- Application Security Vulnerability Periodic Table☆14Aug 25, 2014Updated 11 years ago
- ☆60Feb 27, 2026Updated 3 weeks ago
- "Silver Bullet" is a renowned global account checker. It's known for multi-proxy support, which lets users check account validity while m…☆19Nov 11, 2023Updated 2 years ago
- ☆27May 6, 2025Updated 10 months ago
- Script to check an installed packages list against the ubuntu-cve-tracker☆26Sep 20, 2017Updated 8 years ago
- Passive JavaScript reconnaissance for penetration testers — bridging Burp Suite traffic into structured, AST-based analysis in VSCode.☆36Feb 5, 2026Updated last month
- A free bookmarklet password generator.☆14May 31, 2014Updated 11 years ago
- CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool☆3,510Updated this week
- Version 2 of the Rhythm Randomizer project☆13Jan 6, 2023Updated 3 years ago
- C++ course☆27Sep 9, 2025Updated 6 months ago
- Um projeto dedicado ao compartilhamento de artigos, links e documentos sobre Windows NT Internals, reunindo conhecimento avançado sobre o…☆25May 16, 2025Updated 10 months ago
- Convert your HackerOne reports into reusable AI skills.☆73Mar 9, 2026Updated last week
- Challenges for the TheManyHatsClub CTF☆11May 1, 2023Updated 2 years ago
- Burpsuite Extension for Jsmon☆23Feb 5, 2026Updated last month
- A course about terraform☆11Apr 13, 2021Updated 4 years ago
- ☆11Oct 9, 2022Updated 3 years ago
- English subtitles for the German movie Who Am I Kein System Ist Sicher (No System Is Safe)☆15Apr 29, 2015Updated 10 years ago
- DNA as an information storage medium using either 4-base codon or binary representations of 256-ASCII☆11Sep 6, 2013Updated 12 years ago
- GetSimple CMS Custom JS Plugin Exploit RCE Chain☆11Mar 8, 2023Updated 3 years ago
- LowLevel Jam 0001☆21Mar 20, 2025Updated last year
- SQL, IIS, Oh My...☆22Feb 24, 2025Updated last year
- MCP Server for Cutter☆21Aug 2, 2025Updated 7 months ago
- A formula to calculate bounty amounts.☆15Dec 2, 2017Updated 8 years ago
- An example of a mis-configured Rails application release under MIT license.☆21Jan 19, 2023Updated 3 years ago
- A collection of writeups for active HTB boxes.☆11Nov 15, 2018Updated 7 years ago
- A vulnerabilities database for fully-automated audits☆16Jul 20, 2023Updated 2 years ago
- Chrome extension which sets cookies in bulk from raw header text☆13Mar 2, 2023Updated 3 years ago
- Official Black Hat Arsenal Security Tools Repository☆13Aug 12, 2017Updated 8 years ago
- iOS traffic interception framework which route all device HTTP/HTTPS traffic through Burp Suite via a system-wide VPN tunnel☆41Feb 15, 2026Updated last month
- A collection of in-depth studies authored by me on JavaScript engine vulnerabilities.☆50Feb 6, 2026Updated last month